Details
-
Improvement
-
Status: Closed
-
Major
-
Resolution: Fixed
-
0.29.0
-
None
Description
The JMS client does not currently request mutual-auth when authenticating via GSSAPI/Kerberos, since this is not performed by default by the JVMs SaslServer impl. The cyrus-sasl usage of proton-c and qpid-cpp clients for GSSAPI does result in mutual-auth, where it seems it is performed by default by Cyrus. The JMS client should be updated to match, making their behaviour consistent.